JP2007150559A - Security device - Google Patents

Abstract

In a security device having a function of photographing a surveillance area with a surveillance camera and distributing / recording the photographed image, the image is delivered, recorded, and photographed while protecting the privacy of the individual to be photographed. A crime prevention device capable of reproducing and providing an image based on personal consent is provided.
The privacy of a subject to be photographed is protected by a security device realized by the following configuration.
(1) A personal information acquisition unit that acquires personal information from an individual to be imaged (2) An image encryption unit (3) that encrypts the image capturing function using a public key encryption method with a public key obtained from the personal information to be imaged An image delivery unit for delivering the encrypted image or the unencrypted image; (4) an image recording unit for recording the encrypted image; and (5) the encrypted image with a secret key provided by the consent of the individual to be photographed. The image decoding part which decodes.
[Selection] Figure 1

Description

  The present invention relates to a security device, and more particularly to a security device suitable for recording and distributing an image of a surveillance camera.

  Conventionally, in the work of crime prevention and security of buildings entrances and entrances, various facilities, equipment, etc., an imaging unit such as a surveillance camera that captures the area that requires monitoring is installed, and images from the imaging unit are recorded and displayed Security devices such as monitoring devices and image recording devices that perform monitoring are widely used.

  As an application of these crime prevention devices, for example, the inside of an elevator car is taken as a monitoring target area, is photographed with a surveillance camera, images in the car are recorded, and images in the car are displayed on an image display device such as a monitor installed in each hall of the elevator. Is used to prevent crimes from occurring in the car and to secure evidence images at the time of the crimes. However, in such a function, since the images in the car are recorded as they are and distributed to the image display devices in the halls, there is a problem that the privacy of passengers riding on the elevator cannot be maintained.

  Here, the personal information that is subject to the privacy protection covered by JIS Q 15001 is “information related to an individual, and the name, date of birth and other descriptions included in the information, or a number assigned to each individual. , A symbol or other code, an image or sound that can identify the individual ”. Thus, images of passengers' faces and clothes that ride in the car can be subject to privacy as personal information.

As a method for solving these problems, a crime prevention device of Patent Document 1 has been proposed. According to the method of Patent Document 1, when a person to be photographed has valid personal information authentication means, after authenticating this, the transmission of the photographed image to the monitor is stopped and the masking operation to the photographed image is performed. A function for distributing images has been proposed.
JP 2004-48519 (paragraphs 0005 to 0013, FIG. 1)

  However, in the security device, regarding the recording function as the evidence image securing function at the time of the crime occurrence, depending on the function in the security device of Patent Document 1, when the recorded image is masked, the image is displayed when the crime occurs. It is difficult to use as a proof image. In addition, there is a method of recording an image without a mask in the recording function, but in this case, since the recorded image can be easily reproduced, there is a problem that the privacy of the passenger who is the subject of photographing cannot be maintained. appear.

  A first object of the present invention is to provide a crime prevention device capable of ensuring the privacy of a person shown in an image recorded by the crime prevention device.

  A second object of the present invention is to provide a crime prevention device capable of specifying a person shown in an image while ensuring privacy.

In order to achieve the first object, the invention of claim 1 includes an imaging unit that is installed in a monitoring area and captures an image to be monitored, and a personal information acquisition unit that is installed in the imaging area and acquires personal authentication information. A plurality of personal information and personal information are registered in advance, and a personal authentication unit for specifying personal information corresponding to the personal authentication information acquired by the personal information acquisition unit and an image captured by the imaging unit are recorded. In a security device including an image recording unit and a display unit that displays the image, determination of personal information captured by the imaging unit at least by the image recording unit is performed by registering in advance in the personal authentication unit A public key that disables the image, an image encryption unit that encrypts the target image if the person information is a public key, and an image decryption unit that decrypts the image encrypted by the image encryption unit. It is a thing.

  In order to achieve the second object, the inventions of claim 2 and claim 3 enable image decoding by the image decoding unit using a secret key owned by a setter of the public key, When the disclosure of the personal information is set in the personal authentication information acquired by the information acquisition unit, the encrypted image and the personal information are added and displayed on the display unit. is there.

  In the invention of claim 1, the recorded image of the person shown in the image recorded in the security device is encrypted with the image of the person who is the subject of the public key so that the person determination is impossible. Ensuring privacy is ensured.

  Further, in the inventions of claim 2 and claim 3, in order to decrypt the encrypted image, a secret key owned by the person is required, and in the case of the person who has permitted the disclosure of personal information, the encrypted image is encrypted. Since the personal information for identifying the person is displayed on the image, it is possible to identify the person shown in the image while ensuring the privacy of the person shown in the image.

Hereinafter, embodiments of the present invention will be described with reference to the drawings and flowcharts.

[Embodiment 1]
FIG. 1 is a diagram showing a configuration for realizing the inventions described in claims 1 and 2.

  In FIG. 1, in a monitoring area 1 to be monitored, an imaging unit 11 such as a monitoring video camera that captures the monitoring area 1 and a person 2 who enters or passes through the monitoring area 1 and the person 2 are personally authenticated. When the information holding means 21 is provided, a personal information receiving unit 21 that acquires personal authentication information from the personal authentication information recording means 21 is installed.

  The image monitoring and recording apparatus 3 is installed in a monitoring center, a security station, or the like, and has a function of recording, distributing, and reproducing images of the monitoring area 1 and personal authentication information of the photographed person 2.

The image monitoring recording device 3 searches the personal information storage unit 32 for the personal authentication information obtained from the personal authentication information holding means 21 and encrypts the personal information and images stored in the search result and the personal information storage unit 32. An image including the person 2 obtained by the imaging unit 11 using the personal information confirmation unit 31 having a function of providing a public key used for the purpose and the public key provided by the personal information confirmation unit 31 The image encryption unit 33 for encrypting the image, the image distribution unit 34 having a function of distributing the images (unencrypted and encrypted) obtained by the imaging unit 11 to the distribution image display units 41 to 4n, and the imaging unit When the image recording unit 35 having a function of recording the image (non-encrypted and encrypted) obtained in 11 and the person 2 includes the image of the person 2 and agrees to reproduce / provide the encrypted image And the secret key 22 held by the person 2 A secret key input unit 36 having a function to input and an image decoding unit having a function of decrypting an encrypted image recorded in the image recording unit 35 using a secret key obtained by the secret key input unit 36 Part 37.

  As shown in FIG. 2, the personal information storage unit 32 stores information related to personal information (name, affiliation, etc.), a public key used to perform encryption, information on whether images can be disclosed, and the like. Has been.

  First, the implementation procedure of Embodiment 1 in the crime prevention apparatus having the configuration shown in FIG. 1 will be described using the flowcharts of FIGS. 3 and 5.

  FIG. 3 is a flowchart showing a procedure for performing image recording and encryption, distribution, and recording. The image monitoring / recording apparatus 3 always executes steps S1 to S12 in the flowchart of FIG. 3 during normal image monitoring / distribution / recording.

  Each procedure will be described below.

In step S1, the image monitoring and recording apparatus 3 captures an image of the monitoring area 1 photographed by the imaging unit 11, and in step S2, the personal information acquisition unit 12 tries to acquire personal authentication information from the personal authentication information storage unit 21. To do. Here, when the person 2 registered in the personal information storage unit 32 exists in the monitoring area 1 and the person 2 possesses the personal authentication information storage unit 21, the image of the person 2 is captured by the imaging unit 11. At the same time, the personal information receiving unit 12 can acquire the personal information from the personal authentication information storage unit 21. On the other hand, if no one enters the monitoring area 1 or if the person who has entered does not have the personal authentication information storage means 21, the personal information receiving unit 12 cannot acquire personal information from the personal authentication information storage means 21. .

  In the present embodiment, as a method for acquiring personal authentication information from the personal authentication information storage unit 21, the wireless tag information for acquiring the personal authentication information by radio wave or light is used as the personal authentication unit according to claim 6. A method of receiving by the information receiving unit 12 is assumed.

  Next, in step S3, the acquisition status of the personal authentication information is confirmed. If the personal authentication information has not been acquired, the image of the monitoring area 1 is recorded in the image recording unit 35 as it is (step S4).

  On the other hand, if the personal authentication information has been acquired, the personal information confirmation unit 31 uses the personal information from the information storage unit 21 and searches the personal information storage unit 32 (step S5). For example, when “13579326” is obtained as the personal authentication information, the search result includes name = “○ zawa × husband”, job title = “president”, public key = “OA5DE755”, disclosure permission / inhibition information = “impossible”. Is obtained.

  Next, the image encryption unit 33 of the image monitoring and recording apparatus 3 encrypts the image of the monitoring area 1 photographed by the imaging unit 11 based on the information obtained from the personal information confirmation unit 31. For example, when a valid search result is not obtained from the personal information confirmation unit 31, that is, the person does not enter the monitoring area 1, or possesses the personal authentication information storage unit 21 in which the person entered is registered. If not, the image is sent to the image delivery unit 34 without being encrypted (step S6, image 71 in FIG. 4).

  Further, when a valid search result is obtained from the personal information confirmation unit 31, and in the search result, the availability information = “impossible”, the image is searched for the public key of the search result (procedure) S7) The image is encrypted by the public key cryptosystem using the public key (step S8, image 72 in FIG. 4). Here, as a public key encryption method, a prime factorization type (RSA encryption method, etc.), a discrete logarithm type (elliptical encryption), etc., a public key is used for encryption, and a secret key is used for decryption. It is possible to use an encryption method that is difficult to guess. As an actual encryption method, an image is converted into digital data, and the digital data is encrypted.

  Next, when a valid search result is obtained from the personal information confirmation unit 31 and the disclosure result information is “impossible” = “impossible” (steps S9 to S10), an image is displayed in the search result. The public key is used to encrypt the image using the public key cryptosystem, and the encrypted image is transmitted to the image distribution unit 34. The image distribution unit 34 transmits the encrypted image to the distribution image display units 41 to 4n. (Procedure S10). In this case, in the distribution image display units 41 to 4n, an image having content that infringes on the privacy of the person 2 is not displayed.

  On the other hand, when a valid search result is obtained from the personal information confirmation unit 31 and the disclosure result information is “permitted” = “permitted” (steps S9 to Sll), an image is disclosed to the search result. The key is used to encrypt the image by the public key cryptosystem, and the personal information (name, title, etc.) determined in advance is added to the encrypted image and transmitted to the image distribution unit 34. The distribution unit 34 distributes the encrypted image to the distribution image display units 41 to 4n (procedure Sll, image 73 in FIG. 4).

Here, in the distribution image display parts 41-4n, the image which displays the minimum personal information required for security and management is displayed without infringing on the privacy of the person 2.

  Next, the image recording unit 35 records the image encrypted in step S8 together with personal information (step S12). This personal information is used when searching for an image at the time of decoding. Here, the encrypted image recorded in the image recording unit 35 cannot be decrypted and reproduced unless the person photographed in the image agrees to reproduce and provides a secret key. It is possible to record an image without infringing on the privacy of the person 2 during reproduction.

  FIG. 5 is a flowchart showing a procedure for performing decryption and reproduction of an encrypted image.

The image monitoring and recording apparatus 3 agrees to reproduce an image in which the person 2 is captured, and when personal information and a private key are provided by the person 2, the image monitoring and recording apparatus 3 performs the procedure of FIG. 5 to decrypt and reproduce the image. .

  Each procedure will be described below.

  First, the personal information of the person 2 and the secret key 22 are input at the secret key input unit 36 of the image monitoring recording apparatus 3 (step S20). As an input method, for example, there is a method of inputting personal information by manual input using a numeric keypad or reading from the personal authentication information holding means 21.

Further, as a method for inputting the secret key 22, it is desirable that the secret key input unit 36 provides the secret key 22 by a method read by the secret key holding unit 22 because of the nature of the secret key.

  Next, in the image monitoring and recording apparatus 3, the position for reproduction is specified by specifying the recording date and time (step S21), and the recorded image is reproduced (step S22). When the recorded image is reproduced, it is determined whether the image is encrypted (step S23). Here, as a procedure for determining whether or not the image is encrypted, an area for recording the encrypted state may be provided in the image recording unit 35, and this area may be confirmed. Encrypted images increase the complexity (entropy) of the image compared to unencrypted images, so use the increase in entropy of the image being played, for example, the sum of the differential image values of the image. The normal image and the encrypted image may be discriminated.

  If the image is encrypted, the personal information recorded together with the encrypted image is read from the image recording unit 35 and compared with the personal information input in step S20 (step S25). If the personal information recorded with the encrypted image matches the personal information input in step S20, the encrypted image is decrypted using the private key input in step S20 (step 26). The decoded image is displayed on the image display unit 5. In this way, only when the user agrees to reproduce the image in which the person 2 is captured, the image can be decoded and reproduced, and as a result, the privacy of the image of the person 2 can be maintained.

  Through the above procedure, the image monitoring and recording apparatus 3 can distribute images and limit the recording and reproduction of images while satisfying the privacy protection level desired by the person 2 entering the monitoring area 1. It becomes possible, and it becomes possible to realize a high privacy protection function as compared with the conventional crime prevention device.

  In the present embodiment, as a method for acquiring personal authentication information from the personal authentication information storage unit 21, a method is assumed in which the personal information receiving unit 12 receives RFID tag information for acquiring personal authentication information by radio waves or light rays. However, any means that can perform personal authentication and acquire information such as an ID for each individual to be authenticated can be similarly applied as a means for acquiring personal authentication information. For example, as a method other than a wireless tag, an authentication function using an IC card or a magnetic card, a fingerprint authentication function that authenticates with a fingerprint, an iris authentication function that authenticates with an iris pattern, a vein pattern authentication function that authenticates with a vein pattern, It is possible to apply a personal authentication acquisition method such as a voiceprint recognition function for authenticating with a voiceprint pattern or a palm-shaped authentication function for authenticating with a hand shape. Further, by using a combination of these personal authentication acquisition methods, more reliable personal authentication is possible.

[Embodiment 2]
Hereinafter, another embodiment of the present invention will be described. In the second embodiment, in addition to the first embodiment, the amount of computation required for encryption / decryption is reduced to facilitate the implementation of the embodiment of the present invention.

In the implementation of the present invention, the public key cryptosystem used for image encryption and decryption has the property that the amount of computation at the time of encryption / decryption is larger than that of other schemes. . On the other hand, it is considered that the security device according to the present invention is implemented by being implemented as software or hardware in the monitoring image recording device 3. In this case, in order to reduce the cost and improve the performance of the monitoring image recording apparatus 3, it is necessary to reduce the amount of calculation at the time of encryption / decryption.

  The second embodiment works effectively for such a request. In this embodiment, the image is not directly encrypted by the public key encryption method, but the key used for encryption in the high-speed common key encryption method such as the DES encryption method is encrypted by the public key encryption method. The image is recorded in the image recording unit 35 together with the converted image, and when decrypted, the encrypted common key recorded in the image recording unit 35 is decrypted with the secret key provided by the monitoring target 2 and decrypted. The encrypted image is decrypted using the common key.

  A configuration for realizing this embodiment is shown in FIG. 6, in addition to the embodiment of FIG. 1, a common key generation unit 38 that generates a common key for performing common key encryption, and an encryption common key generation unit 39 that encrypts the common key with a public key. In this configuration, a decrypted common key generation unit 310 for decrypting the encrypted encrypted common key with a secret key is added. 7 shows the relationship between the public key, the common key, the encrypted common key, the encrypted image and the secret key, and the respective function units, and the flowchart of the image encryption recording procedure in the second embodiment is shown in FIG. A flowchart of the decoding procedure is shown in FIG. Hereinafter, the procedure of the second embodiment will be described with reference to FIGS.

  In the image encryption and recording procedure in the third embodiment, steps S1 to S7 in FIG. 8 are the same as those in the first embodiment. In step S7a, a common key necessary for encrypting the image by the common key method is generated. Here, the common key is generated by a random number. Next, in step S8a, the image is encrypted using a high-speed common key encryption method such as a DES encryption method using the common key generated in step S7a. Next, in step S8b, the common key is encrypted with a public key. Step S9 to step S12 are the same as those in the first embodiment. After performing step S12, in step S12a, the encrypted common key generated in step S8b and encrypted with the public key is recorded in the image recording unit 35.

  Further, in the decryption procedure of the encrypted image in the second embodiment, steps S20 to S25 are the same as those in the first embodiment. After performing step S25, in step S26a, the encrypted common key recorded in the image recording unit 35 is decrypted with the secret key provided by the monitoring target 2, and in step S26b, the decrypted common key is used. Then, the encrypted image is decrypted, and the decrypted image is output to the image display unit 5 in step S27.

  Therefore, with the configuration and procedure in the second embodiment, it is possible to perform encryption with a smaller amount of computation than in the first embodiment. As a result, it is possible to implement the encryption / decryption procedure of the present invention even in a monitor image storage device having a simpler configuration using a low-speed CPU or the like, and to provide a monitor image storage device at a lower price. Become.

It is a figure which shows one Embodiment of the crime prevention apparatus in connection with this invention. It is a figure which shows an example of the recording content in the personal information recording part of the crime prevention apparatus in connection with this invention. It is a flowchart which shows the image recording procedure of the crime prevention apparatus in connection with this invention. It is a figure which shows an example of the delivery screen of a crime prevention apparatus in connection with this invention. It is a flowchart which shows the image reproduction procedure of the crime prevention apparatus in connection with this invention. It is a figure which shows Embodiment 2 of the crime prevention apparatus in connection with this invention. It is a figure explaining each encryption following flow in the case of encryption / decryption in Embodiment 2 of a crime prevention apparatus related to the present invention. It is a figure explaining the procedure of the encryption in Embodiment 2 of a crime prevention apparatus in connection with this invention. It is a figure explaining the procedure of the decoding in another embodiment of the crime prevention apparatus in connection with this invention.

Explanation of symbols

DESCRIPTION OF SYMBOLS 1 Monitoring area 11 Imaging part 12 Personal information acquisition part 2 Monitoring object 21 Personal authentication information possessed by monitoring object 22 Secret key recording means possessed by monitoring object 3 Monitoring image recording device 31 Personal information confirmation part 32 Personal information storage part 33 Image Encryption unit 34 Image distribution unit 35 Image recording unit 36 Private key input unit 37 Image decryption unit 38 Common key creation unit 39 Encrypted common key generation unit 310 Decoded common key generation unit 41 to 4n Distribution image display unit 5 Image display unit 71 Non-encrypted image 72 Encrypted image 73 Encrypted image with personal information added

Claims (3)

An imaging unit that is installed in the monitoring area and captures an image to be monitored, a personal information acquisition unit that is installed in the imaging area and acquires personal authentication information, a plurality of personal information and personal information are registered in advance, and the individual A crime prevention device comprising: a personal authentication unit that identifies personal information corresponding to the personal authentication information acquired by the information acquisition unit; an image recording unit that records an image captured by the imaging unit; and a display unit that displays the image In the device
A public key that makes it impossible to determine personal information captured by the image capturing unit at least in the image recording unit by setting and registering in advance in the personal authentication unit;
If the person information is a public key, an image encryption unit for encrypting the target image;
An anti-crime device comprising: an image decryption unit configured to decrypt an image encrypted by the image encryption unit. The crime prevention device according to claim 1,
The crime prevention apparatus characterized in that the image decryption by the image decryption unit is made possible by a secret key owned by a setter of the public key. The crime prevention device according to claim 1,
When the disclosure of personal information is set in the personal authentication information acquired by the personal information acquisition unit, the encrypted image and the personal information are added and displayed on the display unit. Security device characterized by that.

Images